EUVD-2011-2552

Malware in sbrugna...

EUVD-2022-40528

Malicious code in bioql PyPI...

OPENSUSE-SU-2020:1208-1 Security update for firejail

This update for firejail fixes the following issues: - CVE-2020-17367: The end-of-options separator -- was not handled correctly boo1174986. - CVE-2020-17368: An attacker who has control over the command line arguments could run arbitrary commands boo1174986...

CVE-2019-15273

Multiple vulnerabilities in the CLI of Cisco TelePresence Collaboration Endpoint CE Software could allow an authenticated, local attacker to overwrite arbitrary files. The vulnerabilities are due to insufficient permission enforcement. An attacker could exploit these vulnerabilities by...

IBM DB2 - 'db2stop' Command Line Argument Local Overflow

source: https://www.securityfocus.com/bid/8990/info IBM DB2 has been reported to be prone to multiple buffer overflow vulnerabilities that present themselves in binaries that are shipped with DB2. The vulnerabilities are likely caused due to a lack of sufficient boundary checks performed on user...

IBM DB2 - 'db2start' Format String Arbitrary Code Execution

source: https://www.securityfocus.com/bid/8989/info Multiple command-line parameter format string vulnerabilities have been discovered in various IBM DB2 binaries. Specifically, format-based functions are implemented erroneously within the db2govd, db2start, and db2stop programs. These binaries a...

XATO Advisory: Win32 Command-Line Mailers

---------------------------------------------------------------------------- Xato Network Security, Inc. www.xato.net Security Advisory XATO-122000-01 December 12, 2000 - MULTIPLE VENDOR COMMAND-LINE MAILER HOLES - SMTP Command-Line Mailers on Win32 Web Servers...